SUSE-SU-2022:0041-1

Опубликовано: 10 янв. 2022

Источник: suse-cvrf

Описание

Security update for libvirt

This update for libvirt fixes the following issues:

CVE-2021-4147: libxl: Fix libvirtd deadlocks and segfaults. (bsc#1194041)
CVE-2021-3975: Add missing lock in qemuProcessHandleMonitorEOF. (bsc#1192876)

Список пакетов

HPE Helion OpenStack 8

libvirt-3.3.0-5.49.1

libvirt-admin-3.3.0-5.49.1

libvirt-client-3.3.0-5.49.1

libvirt-daemon-3.3.0-5.49.1

libvirt-daemon-config-network-3.3.0-5.49.1

libvirt-daemon-config-nwfilter-3.3.0-5.49.1

libvirt-daemon-driver-interface-3.3.0-5.49.1

libvirt-daemon-driver-libxl-3.3.0-5.49.1

libvirt-daemon-driver-lxc-3.3.0-5.49.1

libvirt-daemon-driver-network-3.3.0-5.49.1

libvirt-daemon-driver-nodedev-3.3.0-5.49.1

libvirt-daemon-driver-nwfilter-3.3.0-5.49.1

libvirt-daemon-driver-qemu-3.3.0-5.49.1

libvirt-daemon-driver-secret-3.3.0-5.49.1

libvirt-daemon-driver-storage-3.3.0-5.49.1

libvirt-daemon-driver-storage-core-3.3.0-5.49.1

libvirt-daemon-driver-storage-disk-3.3.0-5.49.1

libvirt-daemon-driver-storage-iscsi-3.3.0-5.49.1

libvirt-daemon-driver-storage-logical-3.3.0-5.49.1

libvirt-daemon-driver-storage-mpath-3.3.0-5.49.1

libvirt-daemon-driver-storage-rbd-3.3.0-5.49.1

libvirt-daemon-driver-storage-scsi-3.3.0-5.49.1

libvirt-daemon-hooks-3.3.0-5.49.1

libvirt-daemon-lxc-3.3.0-5.49.1

libvirt-daemon-qemu-3.3.0-5.49.1

libvirt-daemon-xen-3.3.0-5.49.1

libvirt-doc-3.3.0-5.49.1

libvirt-libs-3.3.0-5.49.1

libvirt-lock-sanlock-3.3.0-5.49.1

libvirt-nss-3.3.0-5.49.1

SUSE Linux Enterprise Server 12 SP3-BCL

libvirt-3.3.0-5.49.1

libvirt-admin-3.3.0-5.49.1

libvirt-client-3.3.0-5.49.1

libvirt-daemon-3.3.0-5.49.1

libvirt-daemon-config-network-3.3.0-5.49.1

libvirt-daemon-config-nwfilter-3.3.0-5.49.1

libvirt-daemon-driver-interface-3.3.0-5.49.1

libvirt-daemon-driver-libxl-3.3.0-5.49.1

libvirt-daemon-driver-lxc-3.3.0-5.49.1

libvirt-daemon-driver-network-3.3.0-5.49.1

libvirt-daemon-driver-nodedev-3.3.0-5.49.1

libvirt-daemon-driver-nwfilter-3.3.0-5.49.1

libvirt-daemon-driver-qemu-3.3.0-5.49.1

libvirt-daemon-driver-secret-3.3.0-5.49.1

libvirt-daemon-driver-storage-3.3.0-5.49.1

libvirt-daemon-driver-storage-core-3.3.0-5.49.1

libvirt-daemon-driver-storage-disk-3.3.0-5.49.1

libvirt-daemon-driver-storage-iscsi-3.3.0-5.49.1

libvirt-daemon-driver-storage-logical-3.3.0-5.49.1

libvirt-daemon-driver-storage-mpath-3.3.0-5.49.1

libvirt-daemon-driver-storage-rbd-3.3.0-5.49.1

libvirt-daemon-driver-storage-scsi-3.3.0-5.49.1

libvirt-daemon-hooks-3.3.0-5.49.1

libvirt-daemon-lxc-3.3.0-5.49.1

libvirt-daemon-qemu-3.3.0-5.49.1

libvirt-daemon-xen-3.3.0-5.49.1

libvirt-doc-3.3.0-5.49.1

libvirt-libs-3.3.0-5.49.1

libvirt-lock-sanlock-3.3.0-5.49.1

libvirt-nss-3.3.0-5.49.1

SUSE Linux Enterprise Server 12 SP3-LTSS

libvirt-3.3.0-5.49.1

libvirt-admin-3.3.0-5.49.1

libvirt-client-3.3.0-5.49.1

libvirt-daemon-3.3.0-5.49.1

libvirt-daemon-config-network-3.3.0-5.49.1

libvirt-daemon-config-nwfilter-3.3.0-5.49.1

libvirt-daemon-driver-interface-3.3.0-5.49.1

libvirt-daemon-driver-libxl-3.3.0-5.49.1

libvirt-daemon-driver-lxc-3.3.0-5.49.1

libvirt-daemon-driver-network-3.3.0-5.49.1

libvirt-daemon-driver-nodedev-3.3.0-5.49.1

libvirt-daemon-driver-nwfilter-3.3.0-5.49.1

libvirt-daemon-driver-qemu-3.3.0-5.49.1

libvirt-daemon-driver-secret-3.3.0-5.49.1

libvirt-daemon-driver-storage-3.3.0-5.49.1

libvirt-daemon-driver-storage-core-3.3.0-5.49.1

libvirt-daemon-driver-storage-disk-3.3.0-5.49.1

libvirt-daemon-driver-storage-iscsi-3.3.0-5.49.1

libvirt-daemon-driver-storage-logical-3.3.0-5.49.1

libvirt-daemon-driver-storage-mpath-3.3.0-5.49.1

libvirt-daemon-driver-storage-rbd-3.3.0-5.49.1

libvirt-daemon-driver-storage-scsi-3.3.0-5.49.1

libvirt-daemon-hooks-3.3.0-5.49.1

libvirt-daemon-lxc-3.3.0-5.49.1

libvirt-daemon-qemu-3.3.0-5.49.1

libvirt-daemon-xen-3.3.0-5.49.1

libvirt-doc-3.3.0-5.49.1

libvirt-libs-3.3.0-5.49.1

libvirt-lock-sanlock-3.3.0-5.49.1

libvirt-nss-3.3.0-5.49.1

SUSE Linux Enterprise Server for SAP Applications 12 SP3

libvirt-3.3.0-5.49.1

libvirt-admin-3.3.0-5.49.1

libvirt-client-3.3.0-5.49.1

libvirt-daemon-3.3.0-5.49.1

libvirt-daemon-config-network-3.3.0-5.49.1

libvirt-daemon-config-nwfilter-3.3.0-5.49.1

libvirt-daemon-driver-interface-3.3.0-5.49.1

libvirt-daemon-driver-libxl-3.3.0-5.49.1

libvirt-daemon-driver-lxc-3.3.0-5.49.1

libvirt-daemon-driver-network-3.3.0-5.49.1

libvirt-daemon-driver-nodedev-3.3.0-5.49.1

libvirt-daemon-driver-nwfilter-3.3.0-5.49.1

libvirt-daemon-driver-qemu-3.3.0-5.49.1

libvirt-daemon-driver-secret-3.3.0-5.49.1

libvirt-daemon-driver-storage-3.3.0-5.49.1

libvirt-daemon-driver-storage-core-3.3.0-5.49.1

libvirt-daemon-driver-storage-disk-3.3.0-5.49.1

libvirt-daemon-driver-storage-iscsi-3.3.0-5.49.1

libvirt-daemon-driver-storage-logical-3.3.0-5.49.1

libvirt-daemon-driver-storage-mpath-3.3.0-5.49.1

libvirt-daemon-driver-storage-rbd-3.3.0-5.49.1

libvirt-daemon-driver-storage-scsi-3.3.0-5.49.1

libvirt-daemon-hooks-3.3.0-5.49.1

libvirt-daemon-lxc-3.3.0-5.49.1

libvirt-daemon-qemu-3.3.0-5.49.1

libvirt-daemon-xen-3.3.0-5.49.1

libvirt-doc-3.3.0-5.49.1

libvirt-libs-3.3.0-5.49.1

libvirt-lock-sanlock-3.3.0-5.49.1

libvirt-nss-3.3.0-5.49.1

SUSE OpenStack Cloud 8

libvirt-3.3.0-5.49.1

libvirt-admin-3.3.0-5.49.1

libvirt-client-3.3.0-5.49.1

libvirt-daemon-3.3.0-5.49.1

libvirt-daemon-config-network-3.3.0-5.49.1

libvirt-daemon-config-nwfilter-3.3.0-5.49.1

libvirt-daemon-driver-interface-3.3.0-5.49.1

libvirt-daemon-driver-libxl-3.3.0-5.49.1

libvirt-daemon-driver-lxc-3.3.0-5.49.1

libvirt-daemon-driver-network-3.3.0-5.49.1

libvirt-daemon-driver-nodedev-3.3.0-5.49.1

libvirt-daemon-driver-nwfilter-3.3.0-5.49.1

libvirt-daemon-driver-qemu-3.3.0-5.49.1

libvirt-daemon-driver-secret-3.3.0-5.49.1

libvirt-daemon-driver-storage-3.3.0-5.49.1

libvirt-daemon-driver-storage-core-3.3.0-5.49.1

libvirt-daemon-driver-storage-disk-3.3.0-5.49.1

libvirt-daemon-driver-storage-iscsi-3.3.0-5.49.1

libvirt-daemon-driver-storage-logical-3.3.0-5.49.1

libvirt-daemon-driver-storage-mpath-3.3.0-5.49.1

libvirt-daemon-driver-storage-rbd-3.3.0-5.49.1

libvirt-daemon-driver-storage-scsi-3.3.0-5.49.1

libvirt-daemon-hooks-3.3.0-5.49.1

libvirt-daemon-lxc-3.3.0-5.49.1

libvirt-daemon-qemu-3.3.0-5.49.1

libvirt-daemon-xen-3.3.0-5.49.1

libvirt-doc-3.3.0-5.49.1

libvirt-libs-3.3.0-5.49.1

libvirt-lock-sanlock-3.3.0-5.49.1

libvirt-nss-3.3.0-5.49.1

SUSE OpenStack Cloud Crowbar 8

libvirt-3.3.0-5.49.1

libvirt-admin-3.3.0-5.49.1

libvirt-client-3.3.0-5.49.1

libvirt-daemon-3.3.0-5.49.1

libvirt-daemon-config-network-3.3.0-5.49.1

libvirt-daemon-config-nwfilter-3.3.0-5.49.1

libvirt-daemon-driver-interface-3.3.0-5.49.1

libvirt-daemon-driver-libxl-3.3.0-5.49.1

libvirt-daemon-driver-lxc-3.3.0-5.49.1

libvirt-daemon-driver-network-3.3.0-5.49.1

libvirt-daemon-driver-nodedev-3.3.0-5.49.1

libvirt-daemon-driver-nwfilter-3.3.0-5.49.1

libvirt-daemon-driver-qemu-3.3.0-5.49.1

libvirt-daemon-driver-secret-3.3.0-5.49.1

libvirt-daemon-driver-storage-3.3.0-5.49.1

libvirt-daemon-driver-storage-core-3.3.0-5.49.1

libvirt-daemon-driver-storage-disk-3.3.0-5.49.1

libvirt-daemon-driver-storage-iscsi-3.3.0-5.49.1

libvirt-daemon-driver-storage-logical-3.3.0-5.49.1

libvirt-daemon-driver-storage-mpath-3.3.0-5.49.1

libvirt-daemon-driver-storage-rbd-3.3.0-5.49.1

libvirt-daemon-driver-storage-scsi-3.3.0-5.49.1

libvirt-daemon-hooks-3.3.0-5.49.1

libvirt-daemon-lxc-3.3.0-5.49.1

libvirt-daemon-qemu-3.3.0-5.49.1

libvirt-daemon-xen-3.3.0-5.49.1

libvirt-doc-3.3.0-5.49.1

libvirt-libs-3.3.0-5.49.1

libvirt-lock-sanlock-3.3.0-5.49.1

libvirt-nss-3.3.0-5.49.1

Ссылки

https://www.suse.com/support/update/announcement/2022/suse-su-20220041-1/
Link for SUSE-SU-2022:0041-1
https://lists.suse.com/pipermail/sle-security-updates/2022-January/009983.html
E-Mail link for SUSE-SU-2022:0041-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1192876
SUSE Bug 1192876
https://bugzilla.suse.com/1193981
SUSE Bug 1193981
https://bugzilla.suse.com/1194041
SUSE Bug 1194041
https://www.suse.com/security/cve/CVE-2021-3975/
SUSE CVE CVE-2021-3975 page
https://www.suse.com/security/cve/CVE-2021-4147/
SUSE CVE CVE-2021-4147 page

Описание

A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. This flaw could be triggered by the virConnectGetAllDomainStats API when the guest is shutting down. An unprivileged client with a read-only connection could use this flaw to perform a denial of service attack by causing the libvirt daemon to crash.

Затронутые продукты

HPE Helion OpenStack 8:libvirt-3.3.0-5.49.1

HPE Helion OpenStack 8:libvirt-admin-3.3.0-5.49.1

HPE Helion OpenStack 8:libvirt-client-3.3.0-5.49.1

HPE Helion OpenStack 8:libvirt-daemon-3.3.0-5.49.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-3975.html
CVE-2021-3975
https://bugzilla.suse.com/1192876
SUSE Bug 1192876

Описание

A flaw was found in the libvirt libxl driver. A malicious guest could continuously reboot itself and cause libvirtd on the host to deadlock or crash, resulting in a denial of service condition.

Затронутые продукты

HPE Helion OpenStack 8:libvirt-3.3.0-5.49.1

HPE Helion OpenStack 8:libvirt-admin-3.3.0-5.49.1

HPE Helion OpenStack 8:libvirt-client-3.3.0-5.49.1

HPE Helion OpenStack 8:libvirt-daemon-3.3.0-5.49.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-4147.html
CVE-2021-4147
https://bugzilla.suse.com/1194041
SUSE Bug 1194041
https://bugzilla.suse.com/1194313
SUSE Bug 1194313

SUSE-SU-2022:0041-1

Описание

Список пакетов

HPE Helion OpenStack 8

SUSE Linux Enterprise Server 12 SP3-BCL

SUSE Linux Enterprise Server 12 SP3-LTSS

SUSE Linux Enterprise Server for SAP Applications 12 SP3

SUSE OpenStack Cloud 8

SUSE OpenStack Cloud Crowbar 8

Ссылки

Уязвимость: CVE-2021-3975

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2021-4147

Описание

Затронутые продукты

Ссылки